CN102904976A - An Extended Dual Stateless IPv4-IPv6 Translation Method Based on Prefix Assignment - Google Patents
An Extended Dual Stateless IPv4-IPv6 Translation Method Based on Prefix Assignment Download PDFInfo
- Publication number
- CN102904976A CN102904976A CN2012104060996A CN201210406099A CN102904976A CN 102904976 A CN102904976 A CN 102904976A CN 2012104060996 A CN2012104060996 A CN 2012104060996A CN 201210406099 A CN201210406099 A CN 201210406099A CN 102904976 A CN102904976 A CN 102904976A
- Authority
- CN
- China
- Prior art keywords
- ipv4
- address
- ipv6
- message
- translater
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses an extended double stateless IP(Internet Protocol) v4-IPv6 translation method based on prefix distribution. According to the method, a core translator is deployed in a backbone network, and the core translator maps default IPv4 addresses and multiplexing displacement values to public IPv4 addresses and multiplexing displacement values according to user prefixes. In the method, a user side translator is deployed for each user; the user side translators configure default core translator prefixes, specified IPv4 addresses, IPv4 address multiplexing ratios and multiplexing displacement values; and IPv6 prefixes of the user side translators are acquired through a DHCP(dynamic host configuration protocol) v6 prefix distribution mode. Through a double stateless translation technology, IPv4 computers of users can penetrate a pure IPv6 network to communicate with an IPv4 Internet. Through dynamic prefix distribution and mapping of the IPv4 addresses and multiplexing displacement values in the method, operators can more flexibly manage IPv6 prefixes for transition and more effectively utilize scarce public IPv4 address resources.
Description
Technical field
The present invention relates to technical field of the computer network, particularly the dual stateless IPv4-Pv6 interpretation method of a kind of expansion based on prefix assignment.
Background technology
In in the past more than 20 year, be accompanied by the fast development of the Internet, the IPv4 agreement has obtained immense success.Present Global IPv4 user surpasses 1,800,000,000, accounts for 26.6% of population.Yet the sharp increase of network size also highlights a series of serious problems of IPv4, comprises address space deficiency, route scalability problem etc.In February, 2011, IANA has distributed to regional Internet registration body (RIR) with its last 5 available/8IPv4 address spaces, and so far the IPv4 address all distributes.But in China, in three to five years on the horizon, the demand of IP address can be very strong.So the IPv6 agreement is brought into schedule, be used for replacing IPv4.IPv6 has huge address space (2^128), the addressing of layering and routing mechanism, better end-to-end characteristics, the better characteristics such as fail safe and mobility support.IPv6 can satisfy the huge address need of internet of things, has the potentiality that significantly advance internet development, is the supporting protocol of Next Generation Internet.
For realizing that IPv4 is to the transition of IPv6, IETF recommends employing double-stack technology and tunneling technique from IPv4 to the IPv6 transition the earliest, the a lot of operators in the whole world have carried out the test of IPv6 in different scales, a small amount of Information Provider also provides the service of IPv6, but up to the present, the transition situation of the deployment scenario of IPv6 network and information resources is still very limited.Facts have proved, use the mode in two stacks and tunnel to promote that the transition of IPv6 is impracticable, realize that the scheme of the stateless translation of IPv4 and IPv6 the Internet coexistence intercommunication is only solution IPv4 to the unique channel of IPv6 transition.
For realizing the intercommunication of IPv4 and IPv6, the standard that IETF proposes recently includes state translation scheme NAT64 and stateless translation scheme IVI.NAT64 only supports the communication that the IPv6 end is initiated, and does not possess extensibility.In traditional IVI translation scheme, want real between two main frames, to realize intercommunication, also need the translation between the ALG support IPv4/IPv6 protocol suite, and a lot of privately owned application programs are arranged now, want them to support that all address translation is temporarily impossible, therefore the draft of dual translation has been carried out, by for the second time translation, IPv4 user in the IPv6 Access Network can with the IPv4 the Internet in the user interconnect, thereby solved the problem of ALG.And in the deployment of actual telecom operators, different users need to be by individually authentication,authorization,accounting, therefore usually need different prefixes to manage, this can't accomplish in general dual translation scheme, has been carried out in the dual translation draft that is based on prefix assignment.In the dual translation draft based on prefix assignment, each user's side translater is to the prefix of the BAS Broadband Access Server request one/64 of operator, and according to the translation parameter of administrator configurations message translated.But in this scheme, operator need to dispose specific/64 prefixes to each user, and needs and user's side translater is consulted corresponding translation parameter, dynamically specified prefix and parameter.Simultaneously, by user's side translater that telecom operators provide, the general processing that is difficult to support the prefix of length above 64, the way that therefore customer parameter is embedded in the prefix of distributing also is infeasible.Therefore, if operator wants to support a large number of users, management cost is high.For overcoming the above problems, we have proposed based on the dual stateless IPv4/IPv6 interpretation method of the expansion of prefix assignment, by dynamically distributing the unified configuration of prefix and user's side translater, the transition of operation of user management is gone to the core translater, keep again simultaneously the stateless characteristic of original translation scheme, had very strong extensibility.
Summary of the invention
The technical problem that (one) will solve
The technical problem to be solved in the present invention is, for the deficiencies in the prior art, provide a kind of expansion based on prefix assignment dual stateless IPv4-Pv6 interpretation method, how to solve at the extensibility that keeps dual stateless translation, end-to-end address-transparent and when supporting the advantage such as IPv4 address multiplex, for operator provides the prefix assignment of distinguishing flexibly user mechanism, make things convenient for to greatest extent its leading subscriber and rare publicly-owned IPv4 address resource.
(2) technical scheme
The dual stateless IPv4-IPv6 interpretation method of a kind of expansion based on prefix assignment comprises:
S1: configuration core translater translation parameter, and according to described translation parameter structure address mapping table, this mapping table is two-way index address mapping table, described address mapping table comprises: Customs Assigned Number, IPv4 address and deviant;
S2: in the prefix of length of BAS Broadband Access Server configuration less than 64, for all user's side translaters of its range of management, configure user side translater translation parameter; When user's side translater sends the DHCPv6 prefix request, choose one/64 in the prefix space that BAS Broadband Access Server never is assigned with at random and distribute to user's side translater.This/64 prefix is to be formed by connecting by the IPv6 prefix P and the Customs Assigned Number that are used for the expansion translation.After user's side translater is received the prefix announcement, be configured as the special-purpose prefix T of translation;
S3:IPv4 user uses conventional name server nslookup;
S4:IPv4 user sends the IPv4 message to user's side translater;
S5: user's side translater sends to the core translater after the IPv4 message is translated into the IPv6 message;
S6: after the core translater is received the IPv6 message, check at first whether IPv6 address, source is included in the IPv6 prefix P scope of translating for expansion.If in this prefix scope, then do not abandon this message; Otherwise execution in step S7;
S7: the core translater takes out Customs Assigned Number according to prefix P from the source address of IPv6 message, and the inquire address mapping table.If list item corresponding to this Customs Assigned Number not in the mapping table then abandons this message; Otherwise execution in step S8;
S8: the core translater is translated as the IPv4 message with the IPv6 message and is forwarded in the IPv4 the Internet;
S9: the IPv4 message after the translation is passed to the IPv4 server by route in the IPv4 the Internet, and the IPv4 server receives message;
The S10:IPv4 server sends the IPv4 message, and is passed to the core translater according to route;
S11: the core translater receives the IPv4 message, and by the multiplexing deviant S that calculates the IPv4 destination address than R, continuous parameter M of target port/identifier value and configured in advance;
S12: the core translater is inquired about corresponding Customs Assigned Number I according to IPv4 destination address and deviant S in address mapping table.If do not have corresponding list item in the mapping table, then abandon this message; Otherwise execution in step S13;
S13: the core translater is translated as the IPv6 message with the IPv4 message, and the IPv6 message repeating after will translating is to the IPv6 of operator Access Network;
S14: user's side translater is translated back the IPv4 message with the IPv6 message, and the IPv4 message after will translating sends;
S15:IPv4 user receives the IPv4 message, returns S4, until this process finishes.
Wherein, in S 1, described core translater translation parameter comprises: multiplexing than R, continuous parameter M, the acquiescence IPv6/64 prefix D that is used for translation, the IPv4 first address F that is used for the expansion translation, address pool size L and IPv6 prefix P.
Wherein, in S2, described side translater translation parameter comprises: multiplexing IPv4 address A=10.255.255.1 than R, continuous parameter M, acquiescence IPv6/64 prefix D, deviant K=0 and appointment; Wherein R, M and D must with require S1 in the configuration of core translater equate.
Wherein, in S2, the length that disposes on the BAS Broadband Access Server is less than 64 prefix, and its address space is included in the address space for the prefix P of expansion translation, and the address space of the prefix of different BAS Broadband Access Servers can not be overlapped; When user's side translater during from corresponding BAS Broadband Access Server Dynamic Acquisition to/64 prefix, this prefix is formed by connecting by the prefix P and the Customs Assigned Number I that are used for the expansion translation, and this Customs Assigned Number I is unique and cognizable in the scope of operator.
Wherein, multiplexing the acting as than R, continuous parameter M and deviant K of disposing on described user's side translater: the source port or the source identifier that are used for controlling the IPv6 message after the translation, if source port or identifier are N, N=R*M*j+M*K+i then, i value [0, M-1] wherein, the j value is [1024/M/R, 65536/M/R-1], the K value is 0.
Wherein, described user's side translater is translated as the source address of IPv4 message IPv4 address A and the preservation state of appointment, then according to the RFC6052 rule, 32 IPv4 addresses are embedded in 128 the IPv6 address, translation IPv4 destination address and IPv4 source address, carry out protocol translation to the mapping of IPv4 packets headers and IPv6 packets headers according to the RFC6145 rule, the IPv6 destination address after the translation is comprised of default prefix D, u byte, following closely IPv4 destination address and zero padding position; IPv6 source address after the translation is comprised of the special-purpose prefix T of this translater, u byte, following closely IPv4 source assigned address A and the K=0 of acquiescence and zero padding position.
Wherein, in S8, described core translater at first takes out corresponding IPv4 address and the deviant S of Customs Assigned Number from address mapping table, and with the source address of this IPv4 address as the rear IPv4 message of translation, destination address is taken from the 72-103 position of IPv6 destination address; Then according to the RFC6145 rule IPv6 message is carried out protocol translation, last continuous parameter M according to deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are adjusted, and upgrade corresponding check and.
Wherein, in S8, the method of adjustment of core translater source port or source identifier is as follows: described core translater is by the inquire address mapping table, the IPv4 address A of appointment is mapped to the corresponding IPv4 address that is used for the expansion translation, source offset value 0 is mapped as the deviant S that translates for expansion, according to computing formula: N=R*M*j+M*K+i, source port or source offset value are adjusted; If source port or source identifier before adjusting are N, the source port after the adjustment or source identifier are N ', then N '=N+M*S.
Wherein, in S13, the IPv6 destination address after the translation is comprised of the IPv6 prefix P, the Customs Assigned Number I that are used for the expansion translation, u byte, following closely the acquiescence IPv4 address A of user's side translater and the K=0 of acquiescence and zero padding position; The IPv6 source address is comprised of default prefix D, u byte, following closely IPv4 source address and zero padding position.Then calculate corresponding deviant S according to the multiplexing of target port and configured in advance than R, continuous parameter M, and according to the RFC6145 rule IPv4 message is carried out protocol translation.According to the continuous parameter M of deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are oppositely adjusted at last, and upgrade corresponding check and.
Wherein, in S13, the method of adjustment of described core translater target port or object identifier is as follows: described core expansion translater is by the inquire address mapping table, to be mapped to for the IPv4 destination address of expansion translation the IPv4 address A of appointment, to be mapped as 0 for the target offset value S of expansion translation, according to computing formula N=R*M*j+M*K+i, target port or target offset value are made reverse adjustment.If target port or object identifier before reverse the adjustment are N ', oppositely adjusting rear is N, then N=N '-M*S.
Wherein, in S14, IPv4 destination address and source address are taken from respectively the 72-103 position of IPv6 destination address and source address, simultaneously because the IPv4 destination address is the IPv4 address A of appointment, it is mapped as user's private address, then according to the RFC6145 rule IPv6 message is carried out protocol translation.
(3) beneficial effect
The present invention is by inquiring about the stateless mapping table at the core translater, so that the user can obtain prefix dynamically, in the advantages such as the extensibility that keeps dual stateless translation, end-to-end address-transparent and support IPv4 address multiplex, also provide the flexibly prefix assignment of distinguishing user mechanism for operator.In the method, operator can dynamically be that user's side translater distributes/64 prefixes, thereby can manage more neatly the IPv6 prefix for translation, and more effectively utilizes rare publicly-owned IPv4 address resource.
Description of drawings
Fig. 1 is for realizing a kind of system construction drawing of the inventive method;
Fig. 2 is the dual stateless IPv4-Pv6 interpretation method of the expansion flow chart of steps that the present invention is based on prefix assignment.
Embodiment
Below in conjunction with drawings and Examples, the specific embodiment of the present invention is described in further detail.Following examples are used for explanation the present invention, but are not used for limiting the scope of the invention.
Realize system configuration of the present invention as shown in Figure 1, between the IPv6 of IPv4 the Internet and operator Access Network, dispose the core translater, in the IPv6 Access Network, dispose BAS Broadband Access Server, user's side translater is disposed at the edge of IPv6 Access Network, and be connected on the BAS Broadband Access Server, to the prefix of its request/64, the IPv4 subscriber computer is connected on user's side translater.The idiographic flow of the inventive method as shown in Figure 2, concrete steps are as follows:
S1: configuration core translater translation parameter, and according to described translation parameter structure address mapping table, this mapping table is two-way index address mapping table, described address mapping table comprises: Customs Assigned Number, IPv4 address and deviant;
S2: in the prefix of length of BAS Broadband Access Server configuration less than 64, for all user's side translaters of its range of management, configure user side translater translation parameter; When user's side translater sends the DHCPv6 prefix request, choose one/64 in the prefix space that BAS Broadband Access Server never is assigned with at random and distribute to user's side translater.This/64 prefix is to be formed by connecting by the IPv6 prefix P and the Customs Assigned Number that are used for the expansion translation.After user's side translater is received the prefix announcement, be configured as the special-purpose prefix T of translation;
S3:IPv4 user uses conventional name server nslookup;
S4:IPv4 user sends the IPv4 message to user's side translater;
S5: user's side translater sends to the core translater after the IPv4 message is translated into the IPv6 message;
S6: after the core translater is received the IPv6 message, check at first whether IPv6 address, source is included in the IPv6 prefix P scope of translating for expansion.If in this prefix scope, then do not abandon this message; Otherwise execution in step S7;
S7: the core translater takes out Customs Assigned Number according to prefix P from the source address of IPv6 message, and the inquire address mapping table.If list item corresponding to this Customs Assigned Number not in the mapping table then abandons this message; Otherwise execution in step S8;
S8: the core translater is translated as the IPv4 message with the IPv6 message and is forwarded in the IPv4 the Internet;
S9: the IPv4 message after the translation is passed to the IPv4 server by route in the IPv4 the Internet, and the IPv4 server receives message;
The S10:IPv4 server sends the IPv4 message, and is passed to the core translater according to route;
S11: the core translater receives the IPv4 message, and by the multiplexing deviant S that calculates the IPv4 destination address than R, continuous parameter M of target port/identifier value and configured in advance;
S12: the core translater is inquired about corresponding Customs Assigned Number I according to IPv4 destination address and deviant S in address mapping table.If do not have corresponding list item in the mapping table, then abandon this message; Otherwise execution in step S13;
S13: the core translater is translated as the IPv6 message with the IPv4 message, and the IPv6 message repeating after will translating is to the IPv6 of operator Access Network;
S14: user's side translater is translated back the IPv4 message with the IPv6 message, and the IPv4 message after will translating sends;
S15:IPv4 user receives the IPv4 message, returns S4, until this process finishes.
In S1, described core translater translation parameter comprises: multiplexing than R, continuous parameter M, the acquiescence IPv6/64 prefix D that is used for translation, the IPv4 first address F that is used for the expansion translation, address pool size L and IPv6 prefix P.
In S2, described side translater translation parameter comprises: multiplexing IPv4 address A=10.255.255.1 than R, continuous parameter M, acquiescence IPv6/64 prefix D, deviant K=0 and appointment; Wherein R, M and D must with require S1 in the configuration of core translater equate; The length that disposes on the BAS Broadband Access Server is less than 64 prefix, and its address space is included in the address space for the prefix P of expansion translation, and the address space of the prefix of different BAS Broadband Access Servers can not be overlapped; When user's side translater during from corresponding BAS Broadband Access Server Dynamic Acquisition to/64 prefix, this prefix is formed by connecting by the prefix P and the Customs Assigned Number I that are used for the expansion translation, and this Customs Assigned Number I is unique and cognizable in the scope of operator; Multiplexing the acting as than R, continuous parameter M and deviant K of disposing on described user's side translater: the source port or the source identifier that are used for controlling the IPv6 message after the translation, if source port or identifier are N, N=R*M*j+M*K+i then, wherein the i value [0, M-1], the j value is [1024/M/R, 65536/M/R-1], and the K value is 0.
In S5, described user's side translater is translated as the source address of IPv4 message IPv4 address A and the preservation state of appointment, then according to the RFC6052 rule, 32 IPv4 addresses are embedded in 128 the IPv6 address, translation IPv4 destination address and IPv4 source address, carry out protocol translation to the mapping of IPv4 packets headers and IPv6 packets headers according to the RFC6145 rule, the IPv6 destination address after the translation is comprised of default prefix D, u byte, following closely IPv4 destination address and zero padding position; IPv6 source address after the translation is comprised of the special-purpose prefix T of this translater, u byte, following closely IPv4 source assigned address A and the K=0 of acquiescence and zero padding position.
In S8, described core translater at first takes out corresponding IPv4 address and the deviant S of Customs Assigned Number from address mapping table, and with the source address of this IPv4 address as the rear IPv4 message of translation, destination address is taken from the 72-103 position of IPv6 destination address; Then according to the RFC6145 rule IPv6 message is carried out protocol translation, last continuous parameter M according to deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are adjusted, and upgrade corresponding check and; The method of adjustment of core translater source port or source identifier is as follows: described core translater is by the inquire address mapping table, the IPv4 address A of appointment is mapped to the corresponding IPv4 address that is used for the expansion translation, source offset value 0 is mapped as the deviant S that translates for expansion, according to computing formula: N=R*M*j+M*K+i, source port or source offset value are adjusted; If source port or source identifier before adjusting are N, the source port after the adjustment or source identifier are N ', then N '=N+M*S.
In S13, the IPv6 destination address after the translation is comprised of the IPv6 prefix P, the Customs Assigned Number I that are used for the expansion translation, u byte, following closely the acquiescence IPv4 address A of user's side translater and the K=0 of acquiescence and zero padding position; The IPv6 source address is comprised of default prefix D, u byte, following closely IPv4 source address and zero padding position.Then calculate corresponding deviant S according to the multiplexing of target port and configured in advance than R, continuous parameter M, and according to the RFC6145 rule IPv4 message is carried out protocol translation.According to the continuous parameter M of deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are oppositely adjusted at last, and upgrade corresponding check and; The method of adjustment of described core translater target port or object identifier is as follows: described core expansion translater is by the inquire address mapping table, to be mapped to for the IPv4 destination address of expansion translation the IPv4 address A of appointment, to be mapped as 0 for the target offset value S of expansion translation, according to computing formula N=R*M*j+M*K+i, target port or target offset value are made reverse adjustment.If target port or object identifier before reverse the adjustment are N ', oppositely adjusting rear is N, then N=N ' M*S.
In S14, IPv4 destination address and source address are taken from respectively the 72-103 position of IPv6 destination address and source address, because the IPv4 destination address is the IPv4 address A of appointment, it is mapped as user's private address simultaneously, then according to the RFC6145 rule IPv6 message is carried out protocol translation.
Can add the encapsulation to IPv6 by the defined IPv4 of RFC2473 based on the dual translation algorithm of RFC6145.In the translation process from IPv6 to IPv4, can determine whether need decapsulation according to the thresholding of " next stature " in the IPv6 head, still directly translate processing.
The below illustrates the present invention with an object lesson:
Operator is that the IPv4 first address that the core translater is reserved is 202.38.117.65, and address pool length is that 6, IPv6 prefix is 2001:da8:b4b6:1000: :/56, and multiplexing ratio is 4, continuous parameter is 2.The aggregation prefix that is used for distributing of certain BAS Broadband Access Server configuration is 2001:da8:b4b6:1000 :/60.Certain user's side translater connects so far BAS Broadband Access Server, and prefix 2001:da8:b4b6:1006 is arrived in request :/64.The default prefix D of translation is 2001:da8:b4b6:10ff :/64, and the IPv4 address of appointment is 10.255.255.1, deviant is 0.Subscriber computer obtains private address 192.168.1.3/24 by DHCP, and the server address in the IPv4 the Internet is 119.75.217.109, and port is 80.
The address mapping table that makes up in the core expansion translater is as shown in the table.
| Customs Assigned Number | The IPv4 address | Deviant |
| 1 | 202.38.117.65 | 0 |
| 2 | 202.38.117.65 | 1 |
| 3 | 202.38.117.65 | 2 |
| 4 | 202.38.117.65 | 3 |
| 5 | 202.38.117.66 | 0 |
| 6 | 202.38.117.66 | 1 |
| 7 | 202.38.117.66 | 2 |
| 8 | 202.38.117.66 | 3 |
| 9 | 202.38.117.67 | 0 |
| 10 | 202.38.117.67 | 1 |
| 11 | 202.38.117.67 | 2 |
| 12 | 202.38.117.67 | 3 |
| 13 | 202.38.117.68 | 0 |
| 14 | 202.38.117.68 | 1 |
| 15 | 202.38.117.68 | 2 |
| 16 | 202.38.117.68 | 3 |
| 17 | 202.38.117.69 | 0 |
| 18 | 202.38.117.69 | 1 |
| 19 | 202.38.117.69 | 2 |
| 20 | 202.38.117.69 | 3 |
| 21 | 202.38.117.70 | 0 |
| 22 | 202.38.117.70 | 1 |
| 23 | 202.38.117.70 | 2 |
| 24 | 202.38.117.70 | 3 |
Subscriber computer 192.168.1.3/24 initiates the access to 80 ports of IPv4 server 119.75.217.109, and the stochastic source port of generation is 12345.User's side translater is received the IPv4 message, and source address is converted to the IPv4 address 10.255.255.1 of appointment, enters immediately the IPv4/IPv6 translation routine.In the IPv6 message after translation, source port is converted into 12344 according to N=R*M*j+M*K+i, and target port is 80.Source address is 2001:da8:b4b6:1006:a:ffff:100::, destination address is 2001:da8:b4b6:10ff:77:4bd9:6d00::.This IPv6 message is forwarded in the IPv6 Access Network by user's side translater.
Core expansion translater is received this IPv6 message, and calculating Customs Assigned Number according to source address is 6, the corresponding list item of inquiry in address mapping table, and finding corresponding IPv4 address is 202.38.117.66, deviant is 1.So in the IPv4 message after translation, source address is 202.38.117.66, destination address is 119.75.217.109, and source port is adjusted to 12344+2*1=12346, and target port is 80.This IPv4 message is forwarded in the IPv4 the Internet by core expansion translater.The IPv4 server receives this message and is passed to application layer process.
When the IPv4 server returned the IPv4 message, destination address was 202.38.117.66#12346, and source address is 119.75.217.109#80, and this message is forwarded to the core translater.Core expansion translater is according to target port and multiplexing to calculate deviant than R, continuous parameter M be 1, and to find corresponding Customs Assigned Number according to Target IP v4 address and deviant in address mapping table be 6.So in the IPv6 message after translation, target port is adjusted to 12346-2*1=12344, and destination address is 2001:da8:b4b6:1006:a:ffff:100::, source address is translated according to default prefix, be 2001:da8:b4b6:10ff:77:4bd9:6d00::, source port still is 80.This IPv6 message is forwarded in the IPv6 Access Network by core expansion translater.
User's side translater receives this IPv6 message, first the IPv6 message is translated into the IPv4 message, source address is 119.75.217.109#80, destination address is 10.255.255.1#12344, then the IPv4 destination address with appointment is converted to private address 192.168.1.3, it is original 12345 that target port is converted to, and is forwarded to subscriber computer.Subscriber computer receives this IPv4 message and is passed to application layer process.
This process is carried out repeatedly until communicate by letter and finish.
Above execution mode only is used for explanation the present invention; and be not limitation of the present invention; the those of ordinary skill in relevant technologies field; in the situation that does not break away from the spirit and scope of the present invention; can also make a variety of changes and modification; therefore all technical schemes that are equal to also belong to category of the present invention, and scope of patent protection of the present invention should be defined by the claims.
Claims (11)
1. the dual stateless IPv4-IPv6 interpretation method of the expansion based on prefix assignment is characterized in that, comprising:
S1: configuration core translater translation parameter, and according to described translation parameter structure address mapping table, this mapping table is two-way index address mapping table, described address mapping table comprises: Customs Assigned Number, IPv4 address and deviant;
S2: in the prefix of length of BAS Broadband Access Server configuration less than 64, for all user's side translaters of its range of management, configure user side translater translation parameter; When user's side translater sends the DHCPv6 prefix request, choose one/64 in the prefix space that BAS Broadband Access Server never is assigned with at random and distribute to user's side translater.This/64 prefix is to be formed by connecting by the IPv6 prefix P and the Customs Assigned Number that are used for the expansion translation.After user's side translater is received the prefix announcement, be configured as the special-purpose prefix T of translation;
S3:IPv4 user uses conventional name server nslookup;
S4:IPv4 user sends the IPv4 message to user's side translater;
S5: user's side translater sends to the core translater after the IPv4 message is translated into the IPv6 message;
S6: after the core translater is received the IPv6 message, check at first whether IPv6 address, source is included in the IPv6 prefix P scope of translating for expansion.If in this prefix scope, then do not abandon this message; Otherwise execution in step S7;
S7: the core translater takes out Customs Assigned Number according to prefix P from the source address of IPv6 message, and the inquire address mapping table.If list item corresponding to this Customs Assigned Number not in the mapping table then abandons this message; Otherwise execution in step S8;
S8: the core translater is translated as the IPv4 message with the IPv6 message and is forwarded in the IPv4 the Internet;
S9: the IPv4 message after the translation is passed to the IPv4 server by route in the IPv4 the Internet, and the IPv4 server receives message;
The S10:IPv4 server sends the IPv4 message, and is passed to the core translater according to route;
S11: the core translater receives the IPv4 message, and by the multiplexing deviant S that calculates the IPv4 destination address than R, continuous parameter M of target port/identifier value and configured in advance;
S12: the core translater is inquired about corresponding Customs Assigned Number I according to IPv4 destination address and deviant S in address mapping table.If do not have corresponding list item in the mapping table, then abandon this message; Otherwise execution in step S13;
S13: the core translater is translated as the IPv6 message with the IPv4 message, and the IPv6 message repeating after will translating is to the IPv6 of operator Access Network;
S14: user's side translater is translated back the IPv4 message with the IPv6 message, and the IPv4 message after will translating sends;
S15:IPv4 user receives the IPv4 message, returns S4, until this process finishes.
2. interpretation method as claimed in claim 1, it is characterized in that, in S1, described core translater translation parameter comprises: multiplexing than R, continuous parameter M, the acquiescence IPv6/64 prefix D that is used for translation, the IPv4 first address F that is used for the expansion translation, address pool size L and IPv6 prefix P.
3. interpretation method as claimed in claim 1 is characterized in that, in S2, described side translater translation parameter comprises: multiplexing IPv4 address A=10.255.255.1 than R, continuous parameter M, acquiescence IPv6/64 prefix D, deviant K=0 and appointment; Wherein R, M and D must with require S 1 in the configuration of core translater equate.
4. interpretation method as claimed in claim 3, it is characterized in that, in S2, the length that disposes on the BAS Broadband Access Server is less than 64 prefix, its address space is included in the address space for the prefix P of expansion translation, and the address space of the prefix of different BAS Broadband Access Servers can not be overlapped; When user's side translater during from corresponding BAS Broadband Access Server Dynamic Acquisition to/64 prefix, this prefix is formed by connecting by the prefix P and the Customs Assigned Number I that are used for the expansion translation, and this Customs Assigned Number I is unique and cognizable in the scope of operator.
5. interpretation method as claimed in claim 4, it is characterized in that, multiplexing the acting as than R, continuous parameter M and deviant K of disposing on described user's side translater: the source port or the source identifier that are used for controlling the IPv6 message after the translation, if source port or identifier are N, N=R*M*j+M*K+i then, wherein the i value [0, M-1], the j value is [1024/M/R, 65536/M/R-1], and the K value is 0.
6. interpretation method as claimed in claim 1, it is characterized in that, in S5, described user's side translater is translated as the source address of IPv4 message IPv4 address A and the preservation state of appointment, then according to the RFC6052 rule, 32 IPv4 addresses are embedded in 128 the IPv6 address, translation IPv4 destination address and IPv4 source address, carry out protocol translation to the mapping of IPv4 packets headers and IPv6 packets headers according to the RFC6145 rule, the IPv6 destination address after the translation is comprised of default prefix D, u byte, following closely IPv4 destination address and zero padding position; IPv6 source address after the translation is comprised of the special-purpose prefix T of this translater, u byte, following closely IPv4 source assigned address A and the K=0 of acquiescence and zero padding position.
7. interpretation method as claimed in claim 1, it is characterized in that, in S8, described core translater at first takes out corresponding IPv4 address and the deviant S of Customs Assigned Number from address mapping table, with the source address of this IPv4 address as the rear IPv4 message of translation, destination address is taken from the 72-103 position of IPv6 destination address; Then according to the RFC6145 rule IPv6 message is carried out protocol translation, last continuous parameter M according to deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are adjusted, and upgrade corresponding check and.
8. interpretation method as claimed in claim 7, it is characterized in that, in S8, the method of adjustment of core translater source port or source identifier is as follows: described core translater is by the inquire address mapping table, the IPv4 address A of appointment is mapped to the corresponding IPv4 address that is used for the expansion translation, source offset value 0 is mapped as the deviant S that translates for expansion, according to computing formula: N=R*M*j+M*K+i, source port or source offset value is adjusted; If source port or source identifier before adjusting are N, the source port after the adjustment or source identifier are N ', then N '=N+M*S.
9. interpretation method as claimed in claim 1, it is characterized in that, in S13, the IPv6 destination address after the translation is comprised of the IPv6 prefix P, the Customs Assigned Number I that are used for the expansion translation, u byte, following closely the acquiescence IPv4 address A of user's side translater and the K=0 of acquiescence and zero padding position; The IPv6 source address is comprised of default prefix D, u byte, following closely IPv4 source address and zero padding position.Then calculate corresponding deviant S according to the multiplexing of target port and configured in advance than R, continuous parameter M, and according to the RFC6145 rule IPv4 message is carried out protocol translation.According to the continuous parameter M of deviant S and configured in advance, the target port value of TCP message/UDP message or the object identifier value of ICMP infomational message are oppositely adjusted at last, and upgrade corresponding check and.
10. interpretation method as claimed in claim 9, it is characterized in that, in S13, the method of adjustment of described core translater target port or object identifier is as follows: described core expansion translater is by the inquire address mapping table, to be mapped to for the IPv4 destination address of expansion translation the IPv4 address A of appointment, to be mapped as 0 for the target offset value S of expansion translation, according to computing formula N=R*M*j+M*K+i, target port or target offset value be made reverse adjustment.If target port or object identifier before reverse the adjustment are N ', oppositely adjusting rear is N, then N=N '-M*S.
11. interpretation method as claimed in claim 1, it is characterized in that, in S14, IPv4 destination address and source address are taken from respectively the 72-103 position of IPv6 destination address and source address, simultaneously because the IPv4 destination address is the IPv4 address A of appointment, it is mapped as user's private address, then according to the RFC6145 rule IPv6 message is carried out protocol translation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210406099.6A CN102904976B (en) | 2012-10-23 | 2012-10-23 | Extended double stateless IPv4(Internet Protocol) -IPv6 translation method based on prefix distribution |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210406099.6A CN102904976B (en) | 2012-10-23 | 2012-10-23 | Extended double stateless IPv4(Internet Protocol) -IPv6 translation method based on prefix distribution |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102904976A true CN102904976A (en) | 2013-01-30 |
| CN102904976B CN102904976B (en) | 2015-02-18 |
Family
ID=47577010
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210406099.6A Active CN102904976B (en) | 2012-10-23 | 2012-10-23 | Extended double stateless IPv4(Internet Protocol) -IPv6 translation method based on prefix distribution |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102904976B (en) |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103873605A (en) * | 2014-03-26 | 2014-06-18 | 清华大学 | Stateless translation method in which private IPv4 addresses are used |
| CN103888555A (en) * | 2014-03-26 | 2014-06-25 | 清华大学 | IPv4/IPv6 stateless translation algorithm |
| CN104717639A (en) * | 2013-12-17 | 2015-06-17 | 北京邮电大学 | Access method for mobile client to internet and access gateway server |
| WO2017161876A1 (en) * | 2016-03-25 | 2017-09-28 | 中兴通讯股份有限公司 | Method and device implementing network access |
| CN108566345A (en) * | 2018-03-09 | 2018-09-21 | 清华大学 | Flow scheduling processing method, user side translater and core interpreter |
| WO2020027631A1 (en) * | 2018-08-03 | 2020-02-06 | Samsung Electronics Co., Ltd. | Apparatus and method for establishing connection and clat aware affinity (caa)-based scheduling in multi-core processor |
| CN111131047A (en) * | 2019-12-30 | 2020-05-08 | 江苏有线数据网络有限责任公司 | Transition control system and method for realizing transition of home broadband from IPv4 to IPv6 |
| CN113645326A (en) * | 2021-10-13 | 2021-11-12 | 北京英迪瑞讯网络科技有限公司 | Quasi-stateless adaptive mapping method for IPv4/IPv6 access |
| CN113783974A (en) * | 2021-09-09 | 2021-12-10 | 烽火通信科技股份有限公司 | Method and device for dynamically issuing MAP domain rule |
| CN114945013A (en) * | 2022-04-28 | 2022-08-26 | 中国电信股份有限公司 | Data forwarding method and device, electronic equipment and computer readable storage medium |
| CN115277138A (en) * | 2022-07-15 | 2022-11-01 | 绿盟科技集团股份有限公司 | Mandatory access control method and device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1476206A (en) * | 2003-07-14 | 2004-02-18 | 中国科学院计算技术研究所 | A Method of Penetrating NAT Using Double Tunnel Mechanism |
| US20090304026A1 (en) * | 2008-06-06 | 2009-12-10 | Oki Electric Industry Co., Ltd. | Network system for communicating between different IP versions with multiple translators |
| US7764691B2 (en) * | 2007-03-15 | 2010-07-27 | Microsoft Corporation | Allowing IPv4 clients to communicate using teredo addresses when both clients are behind a NAT |
| CN102255976A (en) * | 2010-05-21 | 2011-11-23 | 华为终端有限公司 | Method for selecting IPv4-IPv6 protocol translation module, apparatus and terminal thereof |
| CN102394947A (en) * | 2011-10-31 | 2012-03-28 | 福建星网锐捷网络有限公司 | Translation method, device and system and ALG device for IPv4 and IPv6 addresses |
| CN102739809A (en) * | 2011-04-07 | 2012-10-17 | 中国电信股份有限公司 | DNS64 database, server, system and IPv4/IPv6 communication method |
-
2012
- 2012-10-23 CN CN201210406099.6A patent/CN102904976B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1476206A (en) * | 2003-07-14 | 2004-02-18 | 中国科学院计算技术研究所 | A Method of Penetrating NAT Using Double Tunnel Mechanism |
| US7764691B2 (en) * | 2007-03-15 | 2010-07-27 | Microsoft Corporation | Allowing IPv4 clients to communicate using teredo addresses when both clients are behind a NAT |
| US20090304026A1 (en) * | 2008-06-06 | 2009-12-10 | Oki Electric Industry Co., Ltd. | Network system for communicating between different IP versions with multiple translators |
| CN102255976A (en) * | 2010-05-21 | 2011-11-23 | 华为终端有限公司 | Method for selecting IPv4-IPv6 protocol translation module, apparatus and terminal thereof |
| CN102739809A (en) * | 2011-04-07 | 2012-10-17 | 中国电信股份有限公司 | DNS64 database, server, system and IPv4/IPv6 communication method |
| CN102394947A (en) * | 2011-10-31 | 2012-03-28 | 福建星网锐捷网络有限公司 | Translation method, device and system and ALG device for IPv4 and IPv6 addresses |
Non-Patent Citations (4)
| Title |
|---|
| JUN BI, JIANPING WU, XIAOXIANG LENG: "IPv4/IPv6 transition technologies and univer6 architecture", 《INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY》 * |
| WAI-XI LIU,RUN-HUA TANG,HUI LI,XIAO HU: "Design of an IPv4/IPv6 Translator Based on SOPC Technology", 《IEEE INTERNATIONAL CONFERENCE ON NETWORKING, SENSING AND CONTROL, 2008》 * |
| X.LI,C.BAO,F.BAKER: "IP/ICMP Translation Algorithm", 《INTERNET ENGINEERING TASK FORCE》 * |
| 包丛笑,李星: "基于无状态翻译的IPv4/IPv6过渡技术(ⅠⅤⅠ)", 《下一代互联网与应用研讨会 》 * |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104717639A (en) * | 2013-12-17 | 2015-06-17 | 北京邮电大学 | Access method for mobile client to internet and access gateway server |
| CN103888555A (en) * | 2014-03-26 | 2014-06-25 | 清华大学 | IPv4/IPv6 stateless translation algorithm |
| CN103873605B (en) * | 2014-03-26 | 2017-03-29 | 清华大学 | Using the stateless interpretation method of IPv4 private address |
| CN103873605A (en) * | 2014-03-26 | 2014-06-18 | 清华大学 | Stateless translation method in which private IPv4 addresses are used |
| WO2017161876A1 (en) * | 2016-03-25 | 2017-09-28 | 中兴通讯股份有限公司 | Method and device implementing network access |
| CN107231450A (en) * | 2016-03-25 | 2017-10-03 | 中兴通讯股份有限公司 | A kind of method and apparatus for realizing network access |
| CN108566345A (en) * | 2018-03-09 | 2018-09-21 | 清华大学 | Flow scheduling processing method, user side translater and core interpreter |
| CN108566345B (en) * | 2018-03-09 | 2020-12-04 | 清华大学 | Traffic scheduling processing method, user-side translator and core translator |
| US10952228B2 (en) | 2018-03-09 | 2021-03-16 | Tsinghua University | Traffic scheduling and processing method, user side translator and core translator |
| US11606418B2 (en) | 2018-08-03 | 2023-03-14 | Samsung Electronics Co., Ltd. | Apparatus and method for establishing connection and CLAT aware affinity (CAA)-based scheduling in multi-core processor |
| WO2020027631A1 (en) * | 2018-08-03 | 2020-02-06 | Samsung Electronics Co., Ltd. | Apparatus and method for establishing connection and clat aware affinity (caa)-based scheduling in multi-core processor |
| CN111131047A (en) * | 2019-12-30 | 2020-05-08 | 江苏有线数据网络有限责任公司 | Transition control system and method for realizing transition of home broadband from IPv4 to IPv6 |
| CN113783974A (en) * | 2021-09-09 | 2021-12-10 | 烽火通信科技股份有限公司 | Method and device for dynamically issuing MAP domain rule |
| CN113783974B (en) * | 2021-09-09 | 2023-06-13 | 烽火通信科技股份有限公司 | Method and device for dynamically issuing MAP domain rule |
| CN113645326A (en) * | 2021-10-13 | 2021-11-12 | 北京英迪瑞讯网络科技有限公司 | Quasi-stateless adaptive mapping method for IPv4/IPv6 access |
| CN114945013A (en) * | 2022-04-28 | 2022-08-26 | 中国电信股份有限公司 | Data forwarding method and device, electronic equipment and computer readable storage medium |
| CN114945013B (en) * | 2022-04-28 | 2023-10-27 | 中国电信股份有限公司 | Data forwarding method, device, electronic equipment and computer readable storage medium |
| CN115277138A (en) * | 2022-07-15 | 2022-11-01 | 绿盟科技集团股份有限公司 | Mandatory access control method and device |
| CN115277138B (en) * | 2022-07-15 | 2023-09-22 | 绿盟科技集团股份有限公司 | Forced access control method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102904976B (en) | 2015-02-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102904976A (en) | An Extended Dual Stateless IPv4-IPv6 Translation Method Based on Prefix Assignment | |
| CN102025591B (en) | Method and system for implementing virtual private network | |
| CN102447752B (en) | Service access method, system and device based on layer 2 tunnel protocol (L2TP) | |
| EP2583433B1 (en) | 4t06 network stack for ipv4 applications | |
| EP2671367B1 (en) | Routing traffic towards a mobile node | |
| CN102739810B (en) | The method and apparatus of IPv4CP/SP and IPv6 network interworking | |
| CN102055637B (en) | Wide band network system and realizing method thereof | |
| CN104427010A (en) | NAT (network address translation) method and device applied to DVPN (dynamic virtual private network) | |
| CN104283980A (en) | Address resolution protocol (ARP) reply on-behalf method and device | |
| CN102025589A (en) | Method and system for realizing virtual private network | |
| CN102238058B (en) | Data message processing method, ingress tunnel router and system | |
| CN102577257A (en) | Virtual local area network identity transformation method and apparatus | |
| Atkinson et al. | Evolving the internet architecture through naming | |
| CN102394947B (en) | Translation method, device and system and ALG device for IPv4 and IPv6 addresses | |
| Chandra et al. | A comparative study on IPv4 and IPv6 | |
| CN103118145B (en) | Based on the IPv4-over-IPv6 Multiple tunnel auto-creating method of DNS | |
| CN102045244A (en) | IPV4 (Internet Protocol Version 4) network as well as implementation method and system for intercommunicating with new network | |
| CN102739809A (en) | DNS64 database, server, system and IPv4/IPv6 communication method | |
| WO2016155796A1 (en) | Hybrid access dns optimization for multi-source download | |
| CN102938735A (en) | Method utilizing router advertisement carrying options to issue network address translator (NAT) 64 address prefix | |
| CN102238059A (en) | Data message processing method and system and access service node | |
| CN102098356A (en) | Method for translating Internet protocol version 4 (IPv4)/Internet protocol version 6 (IPv6) initiating communication by using IPv4 based on cloud service | |
| CN102098355A (en) | Cloud service-based IPv6 (internet protocol version 6)/IPv4 (internet protocol version 4) translation method with communication initiated by IPv6 party | |
| US9667592B2 (en) | Efficient utilization of internet protocol addresses | |
| CN103095705B (en) | The method and apparatus of isolated area main frame in access local area network (LAN) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |